Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function.
References
Configurations
History
21 Nov 2024, 00:37
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/38487 - | |
References | () http://secunia.com/advisories/27165 - | |
References | () http://shinnai.altervista.org/exploits/txt/TXT_14md9AHOoCycrnk9l095.html - Exploit | |
References | () http://www.securityfocus.com/bid/25977 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/37035 - | |
References | () https://www.exploit-db.com/exploits/4506 - |
Information
Published : 2007-10-09 22:17
Updated : 2024-11-21 00:37
NVD link : CVE-2007-5322
Mitre link : CVE-2007-5322
CVE.ORG link : CVE-2007-5322
JSON object : View
Products Affected
microsoft
- visual_foxpro
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')